Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Content by Joe Stanganelli

Joe Stanganelli
Member Since: November 15, 2013
Ninja
Posts: 1180

Most Recently Posted

100 items
Comment: js02 - Joe Stanganelli - 7/16/2019
Comment: js01 - Joe Stanganelli - 7/16/2019
Comment: j04 - Joe Stanganelli - 5/22/2019
Comment: j03 - Joe Stanganelli - 5/22/2019
Comment: j02 - Joe Stanganelli - 5/22/2019
Comment: j01 - Joe Stanganelli - 5/22/2019
Comment: js0322 - Joe Stanganelli - 3/31/2019
Comment: js0321 - Joe Stanganelli - 3/31/2019
Comment: js0320 - Joe Stanganelli - 3/31/2019
Comment: js0319 - Joe Stanganelli - 3/31/2019
Comment: js0318 - Joe Stanganelli - 3/31/2019
Comment: js0317 - Joe Stanganelli - 3/31/2019
Comment: js0316 - Joe Stanganelli - 3/30/2019
Comment: js0315 - Joe Stanganelli - 3/30/2019
Comment: js0314 - Joe Stanganelli - 3/30/2019
Comment: js0313 - Joe Stanganelli - 3/30/2019
Comment: js0312 - Joe Stanganelli - 3/30/2019
Comment: js0311 - Joe Stanganelli - 3/30/2019
Comment: js0310 - Joe Stanganelli - 3/29/2019
Comment: js0309 - Joe Stanganelli - 3/29/2019
Comment: js0308 - Joe Stanganelli - 3/29/2019
Comment: js0307 - Joe Stanganelli - 3/29/2019
Comment: js0306 - Joe Stanganelli - 3/29/2019
Comment: js0305 - Joe Stanganelli - 3/29/2019
Comment: js0304 - Joe Stanganelli - 3/29/2019
Comment: js0303 - Joe Stanganelli - 3/29/2019
Comment: js0302 - Joe Stanganelli - 3/29/2019
Comment: js0301 - Joe Stanganelli - 3/28/2019
Comment: Re: S3 again - Joe Stanganelli - 3/3/2019
Comment: No fixes - Joe Stanganelli - 2/28/2019
Comment: S3 again - Joe Stanganelli - 2/28/2019
Comment: Re: Copycats - Joe Stanganelli - 2/25/2019
Comment: Krebs FTW - Joe Stanganelli - 2/25/2019
Comment: Biometrics - Joe Stanganelli - 2/23/2019
Comment: Copycats - Joe Stanganelli - 2/23/2019
Comment: Car or no car - Joe Stanganelli - 2/23/2019
Comment: js19 - Joe Stanganelli - 2/7/2019
Comment: js18 - Joe Stanganelli - 1/31/2019
Comment: js17 - Joe Stanganelli - 1/31/2019
Comment: js16 - Joe Stanganelli - 1/30/2019
Comment: js15 - Joe Stanganelli - 1/24/2019
Comment: js14 - Joe Stanganelli - 1/24/2019
Comment: js13 - Joe Stanganelli - 1/24/2019
Comment: js12 - Joe Stanganelli - 1/23/2019
Comment: js11 - Joe Stanganelli - 1/23/2019
Comment: js10 - Joe Stanganelli - 1/23/2019
Comment: js09 - Joe Stanganelli - 1/23/2019
Comment: js08 - Joe Stanganelli - 1/19/2019
Comment: USDC opinion - Joe Stanganelli - 1/19/2019
Comment: js07 - Joe Stanganelli - 1/18/2019
Comment: js06 - Joe Stanganelli - 1/15/2019
Comment: js05 - Joe Stanganelli - 1/15/2019
Comment: js04 - Joe Stanganelli - 1/15/2019
Comment: js03 - Joe Stanganelli - 1/12/2019
Comment: js02 - Joe Stanganelli - 1/12/2019
Comment: js01 - Joe Stanganelli - 1/12/2019
Comment: RNC too - Joe Stanganelli - 1/8/2019
Comment: Re: Coders? - Joe Stanganelli - 12/31/2018
Comment: "Code shaming" - Joe Stanganelli - 12/31/2018
Comment: Re: Big data - Joe Stanganelli - 12/31/2018
Comment: Panera example - Joe Stanganelli - 12/29/2018
Comment: Re: Open-ports - Joe Stanganelli - 12/29/2018
Comment: inb4 - Joe Stanganelli - 12/21/2018
Comment: Yay. - Joe Stanganelli - 12/21/2018
Comment: 14 - Joe Stanganelli - 11/30/2018
Comment: 13 - Joe Stanganelli - 11/30/2018
Comment: 12 - Joe Stanganelli - 11/30/2018
Comment: 11 - Joe Stanganelli - 11/30/2018


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Creating an Effective Incident Response Plan
Security teams are realizing their organizations will experience a cyber incident at some point. An effective incident response plan that takes into account their specific requirements and has been tested is critical. This issue of Tech Insights also includes: -a look at the newly signed cyber-incident law, -how organizations can apply behavioral psychology to incident response, -and an overview of the Open Cybersecurity Schema Framework.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-43705
PUBLISHED: 2022-11-27
In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introduced in Botan 1.11.34 (November 2016).
CVE-2022-45934
PUBLISHED: 2022-11-27
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
CVE-2022-45931
PUBLISHED: 2022-11-27
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/UserStore.java deleteUser function is affected when the API interface /auth/v1/users/ is used.
CVE-2022-45932
PUBLISHED: 2022-11-27
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm-store-h2/src/main/java/org/opendaylight/aaa/datastore/h2/RoleStore.java deleteRole function is affected when the API interface /auth/v1/roles/ is used.
CVE-2022-45933
PUBLISHED: 2022-11-27
KubeView through 0.1.31 allows attackers to obtain control of a Kubernetes cluster because api/scrape/kube-system does not require authentication, and retrieves certificate files that can be used for authentication as kube-admin. NOTE: the vendor's position is that KubeView was a "fun side proj...